Industry Standards and Bodies

• ISO27001

We are certified to ISO27001, the international best practice standard for an Information Security Management System (ISMS).

• BS25999

We are certified to BS25999 (Business Continuity), the international standard for the requirements for a Business Continuity Management System (BCMS) for ALL its services.

• CLAS

We are part of CLAS – the CESG Listed Advisor Scheme for Security Practitioners into HM Government. CLAS was created by approving a pool of high quality consultants to meet the increasing demand for authoritative Information Assurance advice from Government Departments and other organisations. All CLAS Consultants hold a formal HMG Security Clearance (a minimum of SC).

• CREST

We are certified by CREST to provide global penetration testing services. In the UK CREST works closely with both CESG and the CPNI and their individual ethical hacking qualifications are now recognised by the CESG CHECK scheme as well as being used by the US government as part of the NIBSE training academy. CREST is also becoming well recognised in the private sector, both in companies that form part of the UK CNI and wider into banking, telecommunications and retail.

• CESG and CPNI

We are certified by CESG and the CPNI as a quality-assured cyber incident response provider, as part of their Cyber Incident Response Scheme. The scheme is a HMG quality-assured service provided by industry that organisations can turn to for assistance when they have suffered a cyber security incident.

Professional memberships

• Management Consulting Association (MCA)

We are recognised by the Management Consulting Association (MCA) for demonstrating Consulting Excellence. Consulting Excellence is a framework defined by the MCA (as the industry leading body) to express the mix of the long-standing commitment to quality service plus a relentless focus on innovation that typify the best consulting firms.

• Risk Management Delivery Group (RMDG)

We are a member of the Risk Management Delivery Group (RMDG), a partnership programme established by the UK’s Centre for the Protection of National Infrastructure (CPNI) aimed at creating strong and dynamic links with leading UK consultancies. The programme provides RMDG members with the benefit of direct access to CPNI protective security advice, briefings and support.

This enables member consultancies to provide their customers with informed and comprehensive services relating to protective security, and to address customer vulnerabilities in an integrated way. We are a member of CPNI’s Managed Services Provider’s Information Exchange. We are also a selected member of the BSI’s standards committees on Information Security, Enterprise Risk Management and Societal Security.

• Institute of Risk Management

The Institute of Risk Management (IRM) is the world’s leading enterprise-wide risk education Institute. It is an independent, well-respected advocate of the risk profession, owned by practising risk professionals. IRM passionately believes in the importance of risk management and that investment in education and continual professional development leads to more effective risk management.

• IEEE

The world’s largest professional association dedicated to advancing technological innovation and excellence for the benefit of humanity. IEEE and its members inspire a global community through IEEE's highly cited publications, conferences, technology standards, and professional and educational activities.

• Information Security Systems Association (ISSA)

A not-for-profit, international organisation of information security professionals and practitioners. The ISSA provides educational forums, publications and peer interaction opportunities that enhance the knowledge, skill and professional growth of its members. The primary goal of the ISSA is to promote management practices that will ensure the confidentiality, integrity and availability of information resources.

• Institute of Operational Risk (IOR)

The stated mission of the Institute is to promote the development and discipline of Operational Risk and to foster and maintain investigations and research into the best means and methods of developing and applying the discipline and to encourage, increase, disseminate and promote knowledge, education and training and the exchange of information and ideas.

• Institute of Engineering and Technology (IET)

The IET vision is sharing and advancing knowledge throughout the global science, engineering and technology community to enhance people’s lives around the world. The IET works to build an open, flexible and global knowledge network supported by individuals, companies and institutions and facilitated by the IET and its members.

• International Information Systems Security Certification Consortium

Headquartered in the United States and with offices in London, Hong Kong and Tokyo, the International Information Systems Security Certification Consortium, Inc., (ISC)²®, is the global, not-for-profit leader in educating and certifying information security professionals throughout their careers. The (ISC)2 is recognised for Gold Standard certifications and world class education programs.

• BCS – The Chartered Institute for IT

• Institute of Information Security Professionals (IISP)

The principal objective of the Institute is to advance the professionalism of information security practitioners and thereby the professionalism of the industry as a whole. The Institute aims to provide a universally accepted focal point for the information security profession. The Institute is an independent not-for-profit body governed by its members, ensuring standards of professionalism - for training, qualifications, operating practices and individuals.